IN THE CLAIMS: 

Please enter the following amendments: 

1 . (currently amended) A method of accessing devices on a private network via a 
client on a public network, the method comprising the following steps performed by a gateway 
on the private network: 

accepting a user log-in request from the client prior to ascertaining rights of the user, 
wherein the user log-in request comprises an identification of the user, and wherein the user log-in 
request has a predetermined life span; 

ascertaining rights of a user to access one or more devices on the private network; 

receiving a request from the client to access a Web server of a device on the private 
network, wherein the Web server has an address that is valid on the private network but is not 
valid on the public network; 

redirecting the received client request to the Web server of the device on the private 
network; 

scrubbing a Web page served by the Web server in response to the received client request, 
comprising replacing an address in the Web page that is not valid on the public network with an 
address that is valid on the public network; and 

serving the scrubbed Web page to the client. 

2. (currently amended) The method according to Claim 1, further comprising the 
following steps performed by the gateway after ascertaining rights of a user to access one or more 
devices and prior to receiving a request from the client to access a Web server of the device: 
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serving a Web page to the client that identifies each device on the private network for 
which the user has access rights, wherein the Web page includes a link to a Web server of each 
device on the private network for which the user has access rights. 

3. (cancelled) 

4. (original) The method according to Claim 2, wherein each link to a Web server 
includes a uniform resource locator (URL) for the gateway that is valid on the public network and 
an identification of a gateway port that is mapped to a respective Web server, and wherein each 
link is configured to send a request to a respective Web server via the gateway at an identified 
gateway port. 

5. (original) The method according to Claim 1, wherein the scrubbing step comprises 
replacing an address in the Web page that is valid only on the private network with a URL for the 
gateway that is valid on the public network and an identification of a gateway port that is 
mapped to the replaced address. 

6. (original) The method according to Claim 2, wherein the step of serving a Web page 
to the client comprises: 

scanning a range of private network addresses to identify Web servers listening on one or 
more selected ports; 
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mapping each identified Web server to a respective gateway port; and 
creating a Web page that contains a respective link to each gateway port for each device 
for which the user has access rights. 

7. (currently amended) A method of accessing devices on a private network via a 
client on a public network, wherein each device includes a Web server having an address that is 
valid on the private network, but is not valid on the public network, the method comprising the 
following steps performed by a gateway on the private network: 

accepting a user log-in request from the client prior to ascertaining rights of the user, 
wherein the user log-in request comprises an identification of the user, and wherein the log-in 
request has a predetermined life span; 

ascertaining rights of a user to access one or more devices on the private network; 

serving a Web page to the client that identifies each device on the private network for 
which the user has access rights, wherein the Web page includes a link to a Web server of each 
device on the private network for which the user has access rights; 

receiving a request from the client to access a Web server of a device on the private 
network in response to user activation of a link on the Web page; 

redirecting the received client request to the Web server; 

scrubbing a Web page served by the Web server in response to the received client request, 
comprising removing links to Web servers of devices for which the user does not have access 
rights; and 

serving the scrubbed Web page to the client. 
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8. (cancelled) 



9. (original) The method according to Claim 7, wherein the scrubbing step further 
comprises replacing an address in the Web page that is not valid on the public network with an 
address that is valid on the public network. 

10. (original) The method according to Claim 7, wherein each link to a Web server 
includes a uniform resource locator (URL) for the gateway that is valid on the public network and 
an identification of a gateway port that is mapped to a respective Web server, and wherein each 
link is configured to send a request to a respective Web server via the gateway at an identified 
gateway port. 

1 1 .(original) The method according to Claim 7, wherein the step of serving a Web page 
to the client comprises: 

scanning a range of private network addresses to identify Web servers listening on one or 
more selected ports; 

mapping each identified Web server to a respective gateway port; and 

creating a Web page that contains a respective link to each gateway port for each device 
for which the user has access rights. 
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12.(currently amended) A method of accessing devices on a private network via a 
client on a public network, wherein each device includes a Web server having an address that is 
valid on the private network, but is not valid on the public network, the method comprising the 
following steps performed by a gateway on the private network: 

accepting a user log-in request from the client prior to ascertaining rights of the user, 
wherein the user log-in request comprises an identification of the user, and wherein the user log-in 
request has a predetermined life span; 

ascertaining rights of a user to access one or more devices on the private network; 

serving a Web page to the client that identifies each device on the private network for 
which the user has access rights, wherein the Web page includes a link to a Web server of each 
device on the private network for which the user has access rights, wherein each link to a Web 
server includes a uniform resource locator (URL) for the gateway that is valid on the public 
network and an identification of a gateway port that is mapped to a respective Web server, and 
wherein each link is configured to send a request to a respective Web server via the gateway at an 
identified gateway port; 

receiving a request from the client to access a Web server of a device on the private 
network in response to user activation of a link on the Web page; 

redirecting the received client request to the Web server; 

scrubbing a Web page served by the Web server in response to the received client request, 
comprising: 

removing links to Web servers of devices for which the user does not have access 
rights; and 
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replacing an address in the Web page that is not valid on the public network with 
an address that is valid on the public network: and 
serving the scrubbed Web page to the client. 

13. (cancelled) 

14. (original) The method according to Claim 12, wherein the step of serving a Web page 
to the client comprises: 

scanning a range of private network addresses to identify Web servers listening on one or 

more selected ports; 

mapping each identified Web server to a respective gateway port; and 

creating a Web page that contains a respective link to each gateway port for each device 

for which the user has access rights. 

15. (currently amended) A gateway system that permits access to devices on a 
private network via a client on a public network, comprising: 

means for accepting a user log-in request from the client, wherein the user log-in request 
includes an identification of the user, and wherein the user log-in request has a predetermined 
finite life span. 

means for receiving a request from the client to access a Web server of a device on the 
private network, wherein the Web server has an address that is valid on the private network but 
is not valid on the public network; 
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means for redirecting the received client request to the Web server; 

means for scrubbing a Web page served by the Web server in response to the received 
client request, comprising means for replacing an address in the Web page that is not valid on the 
public network with an address that is valid on the public network; and 

means for serving the scrubbed Web page to the client. 

16. (original) The gateway system according to Claim 15, further comprising: 
means for ascertaining rights of a user to access one or more devices on the private 

network; and 

means for serving a Web page to the client that identifies each device on the private 
network for which the user has access rights, wherein the Web page includes a link to a Web 
server of each device on the private network for which the user has access rights. 

17. (cancelled) 

18. (original) The gateway system according to Claim 16, wherein each link to a Web 
server includes a uniform resource locator (URL) for the gateway system that is valid on the 
public network and an identification of a gateway system port that is mapped to a respective 
Web server, and wherein each link is configured to send a request to a respective Web server via 
the gateway system at an identified gateway system port. 
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19. (original) The gateway system according to Claim 15, wherein the means for 
scrubbing a Web page comprises means for replacing an address in the Web page that is valid 
only on the private network with a URL for the gateway system that is valid on the public 
network and an identification of a gateway system port that is mapped to the replaced address. 

20. (original) The gateway system according to Claim 16, wherein the means for serving 
a Web page to the client comprises: 

means for scanning a range of private network addresses to identify Web servers listening 

on one or more selected ports; 

means for mapping each identified Web server to a respective gateway system port; and 
means for creating a Web page that contains a respective link to each gateway system 

port for each device for which the user has access rights. 

21. (currently amended) A gateway system that permits access to devices on a 
private network via a client on a public network, wherein each device includes a Web server 
having an address that is valid on the private network, but is not valid on the public network, 
wherein the gateway system comprises: 

means for accepting a user log-in request from the client, wherein the user log-in request 
includes an identification of the user and wherein the user log-in request has a predetermined 
finite life span. 

means for ascertaining rights of a user to access one or more devices on the private 
network; 
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means for serving a Web page to the client that identifies each device on the private 
network for which the user has access rights, wherein the Web page includes a link to a Web 
server of each device on the private network for which the user has access rights; 

means for receiving a request from the client to access a Web server of a device on the 
private network, wherein the Web server has an address that is valid on the private network but 
is not valid on the public network; 

means for redirecting the received client request to the Web server; 

means for scrubbing a Web page served by the Web server in response to the received 
client request, comprising means for replacing an address in the Web page that is not valid on the 
public network with an address that is valid on the public network; and 

means for serving the scrubbed Web page to the client. 

22. (cancelled) 

23. (original) The gateway system according to Claim 21, wherein the means for 
scrubbing a Web page further comprises means for replacing an address in the Web page that is 
not valid only the public network with an address that is valid on the public network. 

24. (original) The gateway system according to Claim 21, wherein each link to a Web 
server includes a uniform resource locator (URL) for the gateway system that is valid on the 
public network and an identification of a gateway system port that is mapped to a respective 
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Web server, and wherein each link is configured to send a request to a respective Web server via 
the gateway system at an identified gateway system port. 

25. (original) The gateway system according to Claim 21, wherein the means for serving 
a Web page to the client comprises: 

means for scanning a range of private network addresses to identify Web servers listening 

on one or more selected ports; 

means for mapping each identified Web server to a respective gateway system port; and 
means for creating a Web page that contains a respective link to each gateway system 

port for each device for which the user has access rights. 

26. (currently amended) A gateway system that permits access to devices on a 
private network via a client on a public network, wherein each device includes a Web server 
having an address that is valid on the private network, but is not valid on the public network, 
wherein he gateway system comprises: 

means for accepting a user log-in request from the client, wherein the user log-in request 
includes an identification of the user, and wherein the user log-in request has a predetermined 
finite life span; 

means for ascertaining rights of a user to access one or more devices on the private 
network; 

means for serving a Web page to the client that identifies each device on the private 
network for which the user has access rights, wherein the Web page includes a link to a Web 
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server of each device on the private network for which the user has access rights, wherein each 
link to a Web server includes a uniform resource locator (URL) for the gateway system that is 
valid on the public network and an identification of a gateway system port that is mapped to a 
respective Web server, and wherein each link is configured to send a request to a respective Web 
server via the gateway system at an identified gateway system port; 

means for receiving a request from the client to access a Web server of a device on the 
private network in response to user activation of a link on the Web page; 

means for redirecting the received client request to the Web server; and 

means for scrubbing a Web page served by the Web server in response to the received 
client request, comprising: 

means for removing links to Web servers of devices for which the user does not 

have access rights; 

means for replacing an address in the Web page that is not valid on the public 
network with an address that is valid on the public network; and 
means for serving the scrubbed Web page to the client. 

27. (cancelled) 

28. (original) The gateway system according to Claim 26, wherein the means for serving 
a Web page to the client comprises: 

means for scanning a range of private network addresses to identify Web servers listening 
on one or more selected ports; 
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means for mapping each identified Web server to a respective gateway system port; and 
means for creating a Web page that contains a respective link to each gateway system 
port for each device for which the user has access rights. 

29.(currently amended) A computer program product that permits access to devices 
on a private network via a client on a public network, the computer program product comprising 
a computer usable storage medium having computer readable program code embodied in the 
medium, the computer readable program code comprising: 

computer readable program code that accepts a user log-in request from the client, 
wherein the user log-in request comprises an identification of the user, and wherein the user log-in 
request has a predetermined life span; 

computer readable program code that receives a request from the client to access a Web 
server of a device on the private network, wherein the Web server has an address that is valid on 
the private network but is not valid on the public network; 

computer readable program code that redirects the received client request to the Web 

server; 

computer readable program code that scrubs a Web page served by the Web server in 
response to the received client request, comprising computer readable program code that replaces 
an address in the Web page that is not valid on the public network with an address that is valid 
on the public network; and 

computer readable program code that serves the scrubbed Web page to the client. 



HOME-010/ACM/CWS 
Examiner: Baum, Ronald 



13 



Serial No.: 09/874,802 
Group Art Unit: 2136 



30. (original) The computer program product according to Claim 29, further comprising: 
computer readable program code that ascertains rights of a user to access one or more 

devices on the private network; and 

computer readable program code that serves a Web page to the client that identifies each 
device on the private network for which the user has access rights, wherein the Web page 
includes a link to a Web server of each device on the private network for which the user has 
access rights. 

3 1 . (cancelled) 

32. (original) The computer program product according to Claim 30, wherein each link 
to a Web server includes a uniform resource locator (URL) for a gateway on the private network 
that is valid on the public network and an identification of a gateway port that is mapped to a 
respective Web server, and wherein each link is configured to send a request to a respective Web 
server via the gateway at an identified gateway port. 

33. (original) The computer program product according to Claim 29, wherein the 
computer readable program code that scrubs a Web page comprises computer readable program 
code that replaces an address in the Web page that is valid only on the private network with a 
URL for a gateway on the private network that is valid on the public network and an 
identification of a gateway port that is mapped to the replaced address. 
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34. (original) The computer program product according to Claim 30, wherein the 
computer readable program code that serves a Web page to the client comprises: 

computer readable program code that scans a range of private network addresses to 
identify Web servers listening on one or more selected ports; 

computer readable program code that maps each identified Web server to a respective 
gateway port; and 

computer readable program code that creates a Web page that contains a respective link to 
each gateway port for each device for which the user has access rights. 

35. (currently amended) A computer program product that permits access to devices 
on a private network via a client on a public network, wherein each device includes a Web server 
having an address that is valid on the private network, but is not valid on the public network, the 
computer program product comprising a computer usable storage medium having computer 
readable program code embodied in the medium, the computer readable program code comprising: 

computer readable program code that accepts a user log-in request from the client, 
wherein the user log-in request comprises an identification of the user, and wherein the user log-in 
request has a predetermined life span; 

computer readable program code that ascertains rights of a user to access one or more 
devices on the private network; 

computer readable program code that serves a Web page to the client that identifies each 
device on the private network for which the user has access rights, wherein the Web page 
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includes a link to a Web server of each device on the private network for which the user has 
access rights; 

computer readable program code that receives a request from the client to access a Web 
server of a device on the private network in response to user activation of a link on the Web page; 
computer readable program code that redirects the received client request to the Web 

server; 

computer readable program code that scrubs a Web page served by the Web server in 
response to the received client request, comprising removing links to Web servers of devices for 
which the user does not have access rights; and 

computer readable program code that serves the scrubbed Web page to the client. 

36. (cancelled) 

37. (original) The computer program product according to Claim 35, wherein the 
computer readable program code that scrubs a Web page further comprises computer readable 
program code that replaces an address in the Web page that is not valid on the public network 
with an address that is valid on the public network. 

38. (original) The computer program product according to Claim 35, wherein each link 
to a Web server includes a uniform resource locator (URL) for a gateway on the private network 
that is valid on the public network and an identification of a gateway port that is mapped to a 



HOME-010/ACM/CWS 
Examiner: Baum, Ronald 



16 



Serial No.: 09/874,802 
Group Art Unit: 2136 



respective Web server, and wherein each link is configured to send a request to a respective Web 
server via the gateway at an identified gateway port. 

39. (original) The computer program product according to Claim 35, wherein the 
computer readable program code that serves a Web page to the client comprises: 

computer readable program code that scans a range of private network addresses to 
identify Web servers listening on one or more selected ports; 

computer readable program code that maps each identified Web server to a respective 
port of a gateway on the private network; and 

computer readable program code that creates a Web page that contains a respective link to 
each gateway port for each device for which the user has access rights. 

40. (currently amended) A computer program product that permits access to devices 
on a private network via a client on a public network, wherein each device includes a Web server 
having an address that is valid on the private network, but is not valid on the public network, the 
computer program product comprising a computer usable storage medium having computer 
readable program code embodied in the medium, the computer readable program code comprising: 

computer readable program code that accepts a user log-in request from the client, 
wherein the user log-in request comprises an identification of the user, and wherein the user log-in 
request has a predetermined life span; 

computer readable program code that ascertains rights of a user to access one or more 
devices on the private network; 
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computer readable program code that serves a Web page to the client that identifies each 
device on the private network for which the user has access rights, wherein the Web page 
includes a link to a Web server of each device on the private network for which the user has 
access rights, wherein each link to a Web server includes a uniform resource locator (URL) for the 
gateway that is valid on the public network and an identification of a gateway port that is 
mapped to a respective Web server, and wherein each link is configured to send a request to a 
respective Web server via the gateway at an identified gateway port; 

computer readable program code that receives a request from the client to access a Web 
server of a device on the private network in response to user activation of a link on the Web page; 

computer readable program code that redirects the received client request to the Web 

server; 

computer readable program code that scrubs a Web page served by the Web server in 
response to the received client request, comprising: 

computer readable program code that removes links to Web servers of devices for 
which the user does not have access rights; and 

computer readable program code that replaces an address in the Web page that is 
not valid on the public network with an address that is valid on the public network: and 

computer readable program code that serves the scrubbed Web page to the client. 

41. (cancelled) 
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42.(original) The computer program product according to Claim 40, wherein the 
computer readable program code that serves a Web page to the client comprises: 

computer readable program code that scans a range of private network addresses to 
identify Web servers listening on one or more selected ports; 

computer readable program code that maps each identified Web server to a respective 
gateway port; and 

computer readable program code that creates a Web page that contains a respective link to 
each gateway port for each device for which the user has access rights. 



HOME-010/ACM/CWS 
Examiner: Baum, Ronald 



19 



Serial No.: 09/874,802 
Group Art Unit: 2136 



